Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 14, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3771	4.3	警告 Network	Onyx	Onyx	Onyxにおけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-42276	2026-05-14 10:18	2026-05-8	Show	GitHub Exploit DB Packet Storm

3772	6.5	警告 Network	Onyx	Onyx	Onyxにおけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-42277	2026-05-14 10:18	2026-05-8	Show	GitHub Exploit DB Packet Storm

3773	5.5	警告 Local	Python Software Foundation	Python Pillow	Python Software FoundationのPython Pillowにおける整数オーバーフローの脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2026-42308	2026-05-14 10:18	2026-05-9	Show	GitHub Exploit DB Packet Storm

3774	5.5	警告 Local	Python Software Foundation	Python Pillow	Python Software FoundationのPython Pillowにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-42309	2026-05-14 10:18	2026-05-9	Show	GitHub Exploit DB Packet Storm

3775	5.5	警告 Local	Python Software Foundation	Python Pillow	Python Software FoundationのPython Pillowにおける無限ループに関する脆弱性	CWE-835 無限ループ	CVE-2026-42310	2026-05-14 10:18	2026-05-9	Show	GitHub Exploit DB Packet Storm

3776	8.1	重要 Network	Grav CMS	grav	Grav CMSのgravにおける複数の脆弱性	CWE-269 CWE-285 CWE-639 CWE-837	CVE-2026-42609	2026-05-14 10:18	2026-05-11	Show	GitHub Exploit DB Packet Storm

3777	6.5	警告 Network	Grav CMS	grav	Grav CMSのgravにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-42610	2026-05-14 10:18	2026-05-11	Show	GitHub Exploit DB Packet Storm

3778	8.9	重要 Network	Grav CMS	grav	Grav CMSのgravにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-42611	2026-05-14 10:18	2026-05-11	Show	GitHub Exploit DB Packet Storm

3779	5.4	警告 Network	Grav CMS	grav	Grav CMSのgravにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-42612	2026-05-14 10:18	2026-05-11	Show	GitHub Exploit DB Packet Storm

3780	4.8	警告 Network	Grav CMS	grav	Grav CMSのgravにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-42841	2026-05-14 10:18	2026-05-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
306371	-	google	chrome	Use-after-free vulnerability in Google Chrome before 17.0.963.56 allows user-assisted remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to dr…	CWE-416 Use After Free	CVE-2011-3023	2024-11-21 10:29	2012-02-17	Show	GitHub Exploit DB Packet Storm

306372	-	google	chrome	translate/translate_manager.cc in Google Chrome before 17.0.963.56 and 19.x before 19.0.1036.7 uses an HTTP session to exchange data for translation, which allows remote attackers to obtain sensitive…	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2011-3022	2024-11-21 10:29	2012-02-17	Show	GitHub Exploit DB Packet Storm

306373	-	google apple	chrome itunes safari iphone_os	Use-after-free vulnerability in Google Chrome before 17.0.963.56 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to subframe loading.	CWE-416 Use After Free	CVE-2011-3021	2024-11-21 10:29	2012-02-17	Show	GitHub Exploit DB Packet Storm

306374	-	google	chrome	Unspecified vulnerability in the Native Client validator implementation in Google Chrome before 17.0.963.56 has unknown impact and remote attack vectors.	NVD-CWE-noinfo	CVE-2011-3020	2024-11-21 10:29	2012-02-17	Show	GitHub Exploit DB Packet Storm

306375	-	google	chrome	Heap-based buffer overflow in Google Chrome before 17.0.963.56 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted Matroska video (aka MKV) fi…	CWE-787 Out-of-bounds Write	CVE-2011-3019	2024-11-21 10:29	2012-02-17	Show	GitHub Exploit DB Packet Storm

306376	-	google	chrome	Heap-based buffer overflow in Google Chrome before 17.0.963.56 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to path rendering.	CWE-787 Out-of-bounds Write	CVE-2011-3018	2024-11-21 10:29	2012-02-17	Show	GitHub Exploit DB Packet Storm

306377	-	google	chrome	Use-after-free vulnerability in Google Chrome before 17.0.963.56 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to database handlin…	CWE-416 Use After Free	CVE-2011-3017	2024-11-21 10:29	2012-02-17	Show	GitHub Exploit DB Packet Storm

306378	-	google apple	chrome itunes safari iphone_os	Use-after-free vulnerability in Google Chrome before 17.0.963.56 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving counter nodes, re…	CWE-416 Use After Free	CVE-2011-3016	2024-11-21 10:29	2012-02-17	Show	GitHub Exploit DB Packet Storm

306379	-	google	chrome	Multiple integer overflows in the PDF codecs in Google Chrome before 17.0.963.56 allow remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.	CWE-190 Integer Overflow or Wraparound	CVE-2011-3015	2024-11-21 10:29	2012-02-17	Show	GitHub Exploit DB Packet Storm

306380	-	perl dan_kogai	perl encode_module	Off-by-one error in the decode_xs function in Unicode/Unicode.xs in the Encode module before 2.44, as used in Perl before 5.15.6, might allow context-dependent attackers to cause a denial of service …	CWE-189 Numeric Errors	CVE-2011-2939	2024-11-21 10:29	2012-01-14	Show	GitHub Exploit DB Packet Storm